This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: LNILtX/BN2/v5kGKceoaV73e/GXPfqKZY5goJ36k2wQ= Subject key identifier: 6B:C9:F1:A2:DB:EA:F4:4D:AA:9B:49:92:12:82:EF:7D:5B:98:A4:EC Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 3512 Signing time: Tue 20 Jan 2026 14:21:25 +0000 Manifest this update: Tue 20 Jan 2026 14:21:24 +0000 Manifest next update: Tue 27 Jan 2026 14:21:24 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: JgF75sbPNPINeUXAvcgROQQ9mGSDlCJPz6/zLpwn6Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 14:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Jan 20 14:21:24 2026 GMT Not After : Jan 27 14:21:24 2026 GMT Subject: CN=696f8f64-04c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7f:f5:35:03:36:84:99:c3:93:75:4f:c3:56: 07:1b:75:68:6a:9e:76:d1:40:60:30:4d:c8:2c:be: e6:3a:6d:0a:c2:34:b1:1b:01:90:49:ec:f5:47:a2: d1:d4:18:8a:55:58:98:af:23:3a:88:86:23:81:0c: 72:11:5f:b5:7b:a5:51:cc:a6:80:21:0c:4a:11:c2: 95:50:34:42:d9:06:41:b1:26:bf:52:97:63:1a:8c: c7:0d:b4:d3:1d:38:ea:ea:fb:94:50:dd:da:17:19: 7b:48:ed:fe:8b:84:bd:87:dd:33:03:bc:e4:2b:3f: b6:94:f0:c4:ff:c1:a6:66:43:1a:98:c9:91:d7:f5: 8d:cd:69:7b:59:76:8e:47:f2:de:85:ea:5c:aa:2c: 83:33:b4:47:5a:3f:34:c1:5f:d1:7d:3a:bc:a8:85: 6d:c0:35:23:5e:4c:de:01:2d:36:48:56:5d:b3:8c: 1b:42:e4:bc:cf:cd:51:be:6c:95:d0:50:08:be:4b: 42:11:c1:a8:87:68:95:ae:78:96:a0:e4:b7:c2:d5: d8:a5:50:aa:86:a8:1f:5a:97:f6:c3:1a:2e:92:7a: a5:a0:4a:b0:64:f8:b6:4f:ee:02:68:f2:a4:b1:2b: 8e:a4:1a:39:c1:f8:9c:7d:a1:39:1b:fb:e5:a2:29: a3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C9:F1:A2:DB:EA:F4:4D:AA:9B:49:92:12:82:EF:7D:5B:98:A4:EC X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ee:88:5d:ef:f2:1b:fa:60:3c:36:2a:6a:c8:b9:1b:0e:15: 85:5d:f9:7a:c3:1c:e6:7d:a7:0b:83:ea:0d:d4:91:85:02:80: 70:5a:8f:cd:0a:b5:18:15:83:27:c3:8a:5a:c9:26:ff:20:d3: 7f:d6:5f:ad:91:55:df:9c:c1:0e:fc:d1:bd:eb:20:75:99:b0: 26:a7:34:c1:64:e9:10:58:0e:73:0c:3f:57:10:3d:e8:07:11: 4f:dd:4a:fa:be:9b:86:10:59:24:35:03:2f:69:5c:2e:9d:c8: ce:58:6a:b2:1f:46:2e:7f:44:7b:bc:8d:e9:d9:f2:23:50:ba: 39:d8:ad:b1:a8:0d:e1:e2:80:8d:c0:ad:a9:c5:0d:35:09:50: ed:a4:b8:95:1e:d8:9b:ab:0b:b9:ca:3f:89:0f:d9:4a:af:04: 4c:1e:60:22:1d:e4:5c:ac:17:f0:00:8a:58:24:20:ac:e1:7a: f7:ff:9e:44:a4:a3:37:5b:3a:50:c2:77:28:ea:af:e3:e4:cf: 39:60:3f:d9:28:f7:8e:cc:df:92:f5:52:ee:b1:56:3c:ad:4b: 37:8f:89:d2:c1:ba:52:7a:89:44:08:af:20:55:29:d2:76:d2: 78:ae:0e:bc:23:b3:be:b3:aa:0a:be:4a:ef:12:bb:87:65:ab: c0:cb:a0:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjYwMTIwMTQyMTI0WhcNMjYwMTI3MTQyMTI0WjAYMRYwFAYD VQQDDA02OTZmOGY2NC0wNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjn/1NQM2hJnDk3VPw1YHG3Voap520UBgME3ILL7mOm0KwjSxGwGQSez1R6LR 1BiKVViYryM6iIYjgQxyEV+1e6VRzKaAIQxKEcKVUDRC2QZBsSa/UpdjGozHDbTT HTjq6vuUUN3aFxl7SO3+i4S9h90zA7zkKz+2lPDE/8GmZkMamMmR1/WNzWl7WXaO R/LehepcqiyDM7RHWj80wV/RfTq8qIVtwDUjXkzeAS02SFZds4wbQuS8z81RvmyV 0FAIvktCEcGoh2iVrniWoOS3wtXYpVCqhqgfWpf2wxouknqloEqwZPi2T+4CaPKk sSuOpBo5wficfaE5G/vloimj+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvJ8aLb 6vRNqptJkhKC731bmKTsMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ7ohd7/Ib+mA8NipqyLkbDhWFXfl6wxzmfacLg+oN1JGFAoBwWo/N CrUYFYMnw4paySb/INN/1l+tkVXfnMEO/NG96yB1mbAmpzTBZOkQWA5zDD9XED3o BxFP3Ur6vpuGEFkkNQMvaVwuncjOWGqyH0Yuf0R7vI3p2fIjULo52K2xqA3h4oCN wK2pxQ01CVDtpLiVHtibqwu5yj+JD9lKrwRMHmAiHeRcrBfwAIpYJCCs4Xr3/55E pKM3WzpQwnco6q/j5M85YD/ZKPeOzN+S9VLusVY8rUs3j4nSwbpSeolECK8gVSnS dtJ4rg68I7O+s6oKvkrvEruHZavAy6C3 -----END CERTIFICATE-----Generated at Wed Jan 21 07:51:34 2026 by rpki-client